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tn thf. Claims 

Please cancel claims 1-16 

Please add new claims 17-43 as follows: 



1 17\ (New) A switch comprising: 

2 a plurality of ports; and 

3 a mechanism to determine which one of the plurality of ports is coupled to a destination 

4 device and to transfer information to the destination device without use of a routing protocol. 

1 18. (New) The switch of claim 1 7, wherein the plurality of ports includes (i) a first 

2 plurality of ports coupled to a plurality of devices, including the destination device, associated 

3 with at least two networks, and (ii) a second plurality of ports coupled to a router. 

1 19. (New) The switch of claim 1 8, wherein the networks are virtual local area 

2 networks. 

1 20. (New) The switch of claim 18, wherein the mechanism analyzes data transmitted 

2 between the router and the destination device. 

1 21. (New) The switch of claim 20, wherein the data is packetized in accordance with 

2 an Address Resolution Protocol. 



1 22. (New) The switch of claim 1 7, wherein the mechanism generates a table 

2 including layer two (L2) addresses and corresponding layer three (L3) addresses associated with 

3 the destination device prior to transferring information to the destination device. 
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1 23 . (New) The switch of claim 1 8, wherein the destination device includes a server 

2 associated with one of the at least two networks. 

1 24. (New) A switch comprising: 

2 a plurality of ports adapted for coupling together a plurality of networks and a router; and 

3 a mechanism to (a) analyze information transferred from a source device of a first 

4 network to a destination device of a second network, (b) store information identifying a port 

5 coupled to the second network, a layer two (L2) address of the destination device and a layer 

6 three (L3) address of the destination device, and (c) using the information to forward data 

7 between the plurality of networks. 



1 25 . (New) The switch of claim 24, wherein the information is obtained from packets 

2 configured in accordance with an Address Resolution Protocol. 

1 26. (New) The switch of claim 24, wherein the mechanism uses the information by 

2 (i) determining both the L2 address of the destination device and the port coupled to the second 

3 network based on the L3 address of the destination device supplied by the source device, and (ii) 

4 setting a destination of packets of the data to the L2 address of the destination device. 



1 27. (New) For use in transferring data from a first network to a second network via a 

2 switch interposed between a router and the first and second networks without assistance by the 

3 router, the method comprising: 

4 receiving a data packet by the switch, the data packet originating from a source device 

5 associated with the first network and including a layer three (L3) address of a destination device 

6 of the second network; 



082771.P118C 

App. No. Unassigned 



-3- 



WWS/lbr 
Filed: 1/19/00 
Express Mail No. EL236840665US 



7 determining the L2 address associated with the L3 address of the destination device and a 

8 port of the switch to which the destination device associated with the L3 address is attached; and 

9 setting a destination address of the data packet to the L2 address. 

1 28. (New) A network comprising: 

2 a destination device of a first network; 

3 a source device of a second network; 

4 a router; and 

5 a switch having a plurality of ports supporting communication to the destination device, 

6 the source device and the router, the switch including software to determine which one of the 

7 plurality of ports is coupled to the destination device and to transfer information from the source 
=S 8 device to the destination device without use of a routing protocol. 

i§ 1 29. (New) The network of claim 28, wherein the first network is separate and distinct 

fh 2 from the second network. 

1 30. (New) A learning internetwork switch for use in a network including a plurality 

2 of local area networks, the learning internetwork switch comprising: 

3 first port means for connecting to a set of local area networks; 

4 second port means for connecting to a router to allow a device of a selected local area 

5 network of the plurality of local area networks to communicate with the router through a 

6 transmission of packets; 

7 means for inspecting control packets sent between the router and the device; 

8 means for storing association data that indicates a correspondence between data link layer 

9 addresses, network layer addresses, and the first port means based on information contained in 
1 0 the control packets; and 
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1 1 means for forwarding traffic between locally attached local area networks using the 

12 association data. 

1 31. (New) The learning internetwork switch of claim 30 further comprising third port 

2 means for connecting the router to the second port means. 

1 32. (New) The learning internetwork switch of claim 3 1 , wherein the means for 

2 storing is further configured to store data indicating a correspondence between data link layer 

3 addresses of the third port means and network layer addresses of the third port means based on 

4 information contained in the control packets. 

1 33. (New) The learning internetwork switch of claim 30 further including a proxy 



2 forwarding mechanism for (1) detecting when a packet sent by a first device of a first local area 

3 network in the set of local area networks contains a data link layer destination address associated 

4 with the router and a network layer destination address associated with a second device of a 

5 second local area network in the set of local area networks, (2) determining the data link layer 

6 address of the second device based on the network layer address of the second device, (3) 

7 replacing in the packet the data link layer destination address associated with the router with the 

8 data link layer address associated with the second device, and (4) transmitting the packet through 

9 the port of the first set of ports to which the second device is connected. 



1 34. (New) The learning internetwork switch of claim 30, wherein a control packet 

2 includes a packet that requests a data link layer address of a port of the router. 

1 35. (New) The learning internetwork switch of claim 34, wherein a request packet 

2 contains a data link layer source address associated with the device sending the packet, a network 
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layer source address associated with the device sending the packet, and a network layer 
destination address associated with the port of the router. 



36. (New) The learning internetwork switch of claim 33, wherein the proxy 
forwarding mechanism further (1) determines a data link layer address associated with a port of 
the router which serves as a default gateway to the second local area network, and (2) replaces in 
the packet the data link layer source address associated with the first device with the data link 
layer address associated with the port of the router which serves as the default gateway to the 
second local area network. 

37. (New) For use in transferring data from a first network to a second network via a 
switch interposed between a router and the first and second networks without assistance by the 
router, the method comprising: 

receiving a data packet by the switch, the data packet originating from a source device 
associated with the first network and including a layer three (L3) address of a destination device 

of the second network; 

determining the L2 address associated with the L3 address of the destination device and a 
port of the switch to which the destination device associated with the L3 address is attached; and 

setting a destination address of the data packet to the L2 address. 

38. (New) The method of claim 37, wherein the first and second remarks are virtual 
local area networks. 

39. (New) A learning internetwork switch for use in a network including a plurality 
of virtual local area networks, the learning internetwork switch comprising: 

a first set of ports connecting the learning internetwork switch {o a set of virtual local area 
networks, wherein each virtual local area network of the set of virtual local area networks is a 
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5 virtual local area network of the plurality of virtual local area networks that is locally attached to 

6 the learning internetwork switch; 

7 a second set of ports connecting the learning internetwork switch to a router, wherein 

8 devices that belong to the virtual local area networks of the set of local area networks 

9 communicate with the router by transmitting packets through the learning internetwork switch; 

1 0 a learning mechanism that inspects control packets sent between the router and the 

1 1 device, the learning mechanism storing association data that indicates a correspondence between 

12 data link layer addresses, network layer addresses, and the first set of ports based on information 

1 3 contained in the control packets; and 

14 the learning internetwork switch using the association data to forward traffic between 

1 5 locally attached virtual local area networks. 

1 40. (New) The learning internetwork switch of claim 39 further comprising a third 

2 set of ports on the router connected to the second set of ports. 

1 41 . (New) The learning internetwork switch of claim 40, wherein the leaning 

2 mechanism is further configured to store data indicating a correspondence between data link 

3 layer addresses of the third set of ports and network layer addresses of the third set of ports based 

4 on information contained in the control packets. 

1 42. (New) The learning internetwork switch of claim 39, wherein the control packets 

2 include packets which are request packets that request a data link layer address of a port of the 

3 router. 

1 43. (New) The learning internetwork switch of claim 42, wherein a request packet 

2 contains a data link layer source address associated with the device sending the packet, a network 
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layer source address associated with the device sending the packet, and a network layer 
destination address associated with the port of the router. 

Remarks 

This application is a continuation application of Application No. 08/569,580, filed 
December 8, 1995. Claims 1-16 have been canceled. Examination of claims 17-43 is 
respectfully requested. 

Respectfully submitted, 

Blakely, Sokoloff, Taylor & zafman llp 



Dated: January 19. 2000 




Reg. No. 39,018 
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T EARNING INT ERNETWORK SWITCH 



FIELD OF THE INVENTION 

The present invention relates to network communications, and more 
5 specifically, to a switch configured to learn the network layer addresses of a plurality 
of locally attached virtual local area networks. 

Tt ACKGROI JND OF THE INVENTION 

Large computer network systems are often logically partitioned into numerous 

10 smaller networks, referred to as subnets, virtual local area networks or VLANs. 
Referring to Figure 1, it is a block diagram of a network system 100 that has been 
logically partitioned into three VLANs: VLAN 102, VLAN 1 10 and VLAN 1 18. 
VLAN 102 includes a server 104 and two clients 106 and 108. VLAN 1 10 includes a 
server 1 12 and two clients 1 14 and 1 16. VLAN 1 18 includes a server 120 and two 

15 clients 122 and 124. The members of each VLAN communicate with each other 

through a hub or switch. In the illustrated example, the members of VLANs 102, 1 10 
and 1 18 communicate with each other through switches 134, 136, and 138, 
respectively. 

All messages sent between members of a given VLAN are sent at the data link 
20 layer (level two) of the ISO reference model. Messages sent between VLANs are 
routed at the network layer 0evel three) of the ISO reference model. Control 
information is transmitted with a packet to indicate the device that sent the packet, the 
device that is to receive the packet, and the protocol-type of the packet A packet sent 
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between VLANs may include, for example, control information that indicates the 
protocol-type (PT) of the packet, the data link layer address of the source device (SA), 
the data link layer address of the destination device (DA), the network layer address of 
the source device (SNLA), and the network layer address of the destination device 
5 (DNLA). 

The larger network system 100 is formed by connecting the VLANs to each 
other through a router 126. Specifically, VLANs 102, 1 10 and 1 18 are respectively 
connected to ports 130, 128 and 132 of router 126. Because the VLANs are 
connected to each other through router 126, the members of each VLAN are able to 
10 communicate with members of other VLANs that are part of the larger network system 
100. However, a different mechanism is used to communicate between members of 
different VLANs than is used to communicate between members of the same VLAN. 

TYPICAL INTRA-VLAN COMMUNICATION 
15 Within a given VLAN, each device has a unique data link layer address (L2 

address). Before one member of a VLAN can communicate with another member of 
the same VLAN, it must determine the L2 address of the device with which it desires 
to communicate. Consider a typical intra- VLAN communication where client 106 
desires to send a message to server 104. Initially, client 106 knows the network layer 
20 address (L3 address) of server 104, but does not know the L2 address of server 104. 
To obtain the L2 address of server 104, client 106 transmits a request for the L2 
address of server 104. The request includes the L3 address of server 104, and 



08277 1.P1 18 



-3- 

specifies the L2 address of client 106 as Ihe "source address" of the request. Such 
requests are referred to as Address Resolution Protocol queries ("ARP queries"). 

Switch 134 receives the ARP query from client 106 and broadcasts the ARP 
query to all members of VLAN 102. Server 104 receives the broadcasted ARP query 
5 and replies by sending a message that contains its L2 address to client 106 through 
switch 134. The server 104 is able to address the reply message directly to client 106 
using the L2 address of client 106 mat was contained in the ARP query. A reply 
message to an ARP query is referred to as an ARP response. The ARP response is 
transmitted from server 104 to client 106 through switch 134. Client 106 receives the 
10 ARP response and transmits the message to server 104 through switch 134 in a packet 
that specifies the L2 address of server 104 as the destination address and the L2 
address of client 106 as the source address. 

TYPICAL INTER-VLAN COMMUNICATION 
A typical inter-VLAN communication is more complicated. Assume, for 
15 example, that client 1 14 desires to send a message to server 104. Initially, client 1 14 
is aware of the L3 address of server 104. Based on the L3 address, client 1 14 is able 
to determine that server 104 does not belong to the same VLAN as client 1 14. Upon 
detennining that server 104 is on a different VLAN than client 1 14, client 1 14 sends 
an ARP query that requests the L2 address of the default gateway. 
20 Router 126 receives the ARP query at port 128 and responds by transmitting 

an ARP response to client 1 14 that contains the L2 address of port 128. Client 1 14 
then transmits the message to router 126 by specifying the L2 address of port 128 as 
the L2 destination address for the message. The message also contains control 
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inf ormation that specifies a Destination Network Level Address ("DNLA"). In the 
present example, the L3 address of server 104 is the DNLA specified in the control 
information of the message. 

Router 126 receives the message from client 1 14 and uses the 13 address of 

5 server 104 to look up the outbound port that connects router 126 to server 104. 
Router 126 will have previously acquired this information using a routing protocol. 
In the present example, router 126 would determine that port 130 connects to the 
VLAN containing server 104. Router 126 then transmits an ARP query through port 
130 to VLAN 102 requesting the address of server 104. The ARP query specifies the 

10 L2 address of port 130 as the source address, and includes the L3 address of server 
104. The switch 134 of VLAN 102 broadcasts the ARP query to all members of 
VLAN 102. 

Server 104 responds to the ARP query by transmitting an ARP response that 
contains its L2 address. The destination address specified in the ARP response is the 

15 L2 address of port 130. When router 126 receives the ARP response through port 
130, router 126 forwards to server 104 the message that was originally sent from 
client 1 14. This is accomplished by encapsulating the message in a packet that 
specifies the L2 address of port 130 as the source address and the L2 address of 
server 104 as the destination address, and then sending the packet to VLAN 102 

20 through port 130. 

The inter-VLAN communication technique described above has some 
significant disadvantages. For example, all client-server traffic that requires inter- 
VLAN communication must traverse the router. However, conventional routers have 
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throughput and latency limitations for client-server operations* As a result, client- 
server operations that use intra- VLAN communications are generally performed faster 
than the same operations using inter-VLAN communications. Another disadvantage is 
that router ports are relatively expensive. Therefore, network costs can increase 
dramatically with an increase in the number of router ports required to support inter- 
VLAN communication. 
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SUMMARY OF THE INVENTION 

A method and apparatus for forwarding packets between locally attached 
virtual local area networks are provided. A learning internetwork switch is connected 
between a router and a plurality of virtual local area networks. Communications 

5 between devices on the virtual local area networks and the router pass through the 
learning internetwork switch. By inspecting the packets that flow between the devices 
and the router, the learning internetwork switch determines the location of the devices 
without having to use a routing protocol. The learning internetwork switch learns the 
data link layer addresses and network layer addresses of the various devices. Once 

10 the learning internetwork switch has learned the location (port), the data link layer 
address of a device, and the network layer address of a device, the learning 
internetwork switch can forward packets between different virtual local area networks 
using network layer switching without involving the router. 

The learning internetwork switch contains a connection to each virtual local 

1 5 area network and a corresponding connection to the router. All traffic between the 
devices in the VLANs and the router must pass through the learning internetwork 
switch. The learning mechanism inspects certain packets sent between the router and 
the communicating devices and stores data indicating the port location of each device 
based on information contained in the certain packets. 

20 According to one embodiment, the learning mechanism is further configured to 

store data indicating a correspondence between data link layer addresses of the devices 
and network layer addresses of the devices based on information contained in the 
certain packets. 
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According to an embodiment, the learning internetwork switch includes a 
proxy forwarding mechanism. The proxy forwarding mechanism detects when a 
packet sent by a first device of a first virtual local area network contains (1) a data link 
layer destination address associated with the router and (2) a network layer destination 

5 address associated with a second device of a second virtual local area network in the 
set of virtual local area networks. 

The proxy forwarding mechanism determines the data link layer address of the 
second device based on the network layer address of the second device and replaces in 
the packet the data link layer destination address associated with the router with the 

10 data link layer address associated with the second device. The proxy forwarding 
mechanism then transmits the packet through the port to which the second device is 
connected. 

A method, for use by a learning internetwork switch connected to a router, for 
determining locations of devices that belong to a set of virtual local area networks 

15 locally attached to the learning internetwork switch is also provided. According to the 
method, a packet from a device that belongs to one of the virtual local area networks is 
receiving at a first port of the learning internetwork switch. 

It is determined whether the packet is a request for the data link layer address 
of the particular port of the router. If the packet is a request for the data link layer 

20 address of the particular port of the router, then a data link layer source address and a 
network layer source address are read from the packet Data indicating that the data 
link layer source address corresponds to the network layer source address is stored 
Data indicating that the device that originally transmitted the packet is connected to the 
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first port is also stored. The packet is then forwarded to the particular port of the 
router 

If the packet contains a message to be sent through the router to a second 
device that belongs to a second virtual local area network of the set of virtual local area 

5 networks, then a network layer destination address associated with the second device 
is read from the packet A lookup operation is performed to determine if configuration 
information has been stored for the network layer destination address. If 
configuration information has been stored for the network layer destination address, 
then the configuration information is read to determine a data link layer address of the 

10 second device and that the second device is connected to a second port of the learning 
internetwork switch. The packet is forwarded to the second device through the 
second port. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention is illustrated by way of example, and not by way of 
limitation, in the figures of the accompanying drawings and in which like reference 
numerals refer to similar elements and in which: 
5 Figure 1 is a block diagram of a prior art network system in which all inter- 

VLAN communication is performed through a router; 

Figure 2 is a block diagram of a network system that includes a learning 
internetwork switch configured to perform proxy forwarding according to an 
embodiment of the invention; 
10 Figure 3a is a portion of a flow chart illustrating how the learning internetwork 

switch learns configuration information during the communication that takes place 
between when a source device requests the data link layer address of the default 
gateway port of a router; 

Figure 3b is a portion of the flow chart of Figure 3a; 
1 5 Figure 4a is a portion of a flow chart illustrating how the learning internetwork 

switch learns configuration information as an internetwork message is forwarded by a 
router to a destination device; 

Figure 4b is a portion of the flow chart of Figure 4a; 

Figure 4c is a portion of the flow chart of Figure 4b; 
20 Figure 5 is a flow chart illustrating the steps performed by a learning 

internetwork switch to perform proxy forwarding according to an embodiment of the 
invention; 
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Figure 6a is a portion of a flow chart illustrating the steps performed by a 
learning internetwork switch upon detecting the arrival of a packet; and 
Figure 6b is a portion of the flow chart of Figure 6a. 
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DETAILED DESCRIPTION OF THE PREFER RED EMBODIMENT 

Referring to Figure 2, it is a block diagram illustrating the network system 100 
of Figure 1 with the addition of a learning internetwork switch 200 according to an 
embodiment of the invention. As shall be described in greater detail below, learning 

5 internetwork switch 200 is a device for forwarding traffic between locally attached 
VLANs using L3 addresses. Learning internetwork switch 200 generates a table that 
reflects the correlation between L2 and L3 addresses based on information learned 
from inspecting certain packets (e.g. ARP queries and ARP responses) sent between 
router 126 and the members of the various VLANs 102, 1 10 and 1 18, The learning 

10 process is performed without impacting either the current configuration of the routers 
in the network or the network layer address assignment. 

For the purposes of explanation, the invention shall be described with 
reference to packets transmitted according to the Internet Protocol (IP). However, the 
present invention is not limited to any particular protocol. The information contained 

15 in the packets inspected by the learning internetwork switch 200 will vary depending 
on the protocol used in the network. The scope of present invention includes learning 
internetwork switches configured to take into account such variations. The design and 
operation of such switches will be evident to one skilled in the art upon reading the 
following description. 

20 In the following discussion, it shall be explained how learning internetwork 

switch 200 learns the correspondence between L2 and L3 addresses when a message 
is sent from one device (SOURCE-DEV) that belongs to one VLAN (SOURCE- 
VLAN) to another device (DEST-DEV) that belongs to another VLAN (DEST- 
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VLAN). The 12 and L3 addresses of SOURCE-DEV shall be referred to hereafter as 
SDL2 and SDL3, respectively, and the L2 and L3 addresses of DEST-DEV shall be 
referred to hereafter as DDL2 and DDL3, respectively. The L2 and L3 addresses of 
the port of router 126 that is serving as the default gateway of the SOURCE-VLAN 

5 (DG) shall be referred to hereafter as DGL2 and DGL3, respectively. 

From the perspective of the device transmitting a message, the process of 
transmitting a packet to a device in another VLAN is not affected by the presence of 
learning internetwork switch 200. Thus, the SOURCE-DEV must (1) determine the 
L2 address of the default gateway, and (2) transmit the message to the default gateway 

10 in a packet that specifies the L3 address of the destination device. Figures 3a and 3b 
are a flow chart illustrating the steps performed by the various devices of network 
system 100 while the source device determines the L2 address of the destination 
device. Figures 4a, 4b and 4c are a flow chart illustrating the steps performed by the 
various devices of network system 100 when the source device transmits the message 

15 to the default gateway. 

DETERMINING THE 12 ADDRESS OF THE DEFAULT GATEWAY 
Initially, SOURCE-DEV knows DDL3 and DGL3 but does not know DDL2 
or DGL2. At step 300, SOURCE-DEV determines that DEST-DEV is not a member 
20 of SOURCE-VLAN based on DDL3. Because DEST-DEV is not a member of 
SOURCE-VLAN, SOURCE-DEV knows that the message to DEST-DEV must be 
sent through DG. For example, assume that client 1 14 desires to send a message to 
server 104. Initially, client 1 14 knows the L3 address of server 104 and the L3 



082771.P118 



-13- 

address of port 128 but does not know DDL2 nor the L2 address of port 128. At step 
300, client 1 14 determines that server 104 is not a member of VLAN 1 10 based on the 
L3 address of server 104. Because server 104 is not a member of VLAN 1 10, client 
1 14 knows that the message to server 104 must be sent through port 128. 

5 To obtain DGL2, SOURCE-DEV transmits an ARP query that requests the L2 

address associated with DGL3 (step 302). The destination address specified in the 
ARP query is a special L2 address that indicates that the message is to be broadcast to 
all devices on SOURCE-VLAN. Upon receiving the ARP query, the L2 switch of the 
SOURCE- VLAN broadcasts the ARP query to all members of SOURCE-VLAN. The 

10 router port that is serving as the default gateway of a VLAN is a member of the VLAN 
to which the port is connected. Therefore, the L2 switch of the SOURCE-VLAN will 
broadcast the ARP query to DG. 

Continuing with the present example, client 1 14 transmits an ARP query that 
requests the L2 address associated with the L3 address of port 128 at step 302. The 

15 destination address specified in the ARP query is a special L2 address that indicates 
that the message is to be broadcast to all devices on VLAN 1 10. Upon receiving the 
ARP query, the switch 136 broadcasts the ARP query to all members of VLAN 1 10. 
Port 128, which is serving as the default gateway of a VLAN 1 10 is a member of 
VLAN 1 10. Therefore, switch 136 will broadcast the ARP query to port 128. 

20 As illustrated in Figure 2, all communications between VLANs 102, 1 10 and 

118 and router 126 flow through learning internetwork switch 200. Specifically, 
ports 202, 204 and 206 of learning internetwork switch 200 correspond to ports 128, 
130 and 132 of router 126, respectively. All messages sent from VLANs 1 10, 102 
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and 1 18 are received at ports 202, 204 and 206 of learning internetwork switch 200, 

respectively, prior to being forwarded to the corresponding ports of router 126. For 
example, messages sent by members of VLAN 1 10 to port 128 will arrive at port 202 
of learning internetwork switch 200 prior to being forwarded by the switch to port 
5 128 of router 126. Similarly, messages from VLANs 102 and 118 will arrive at ports 
204 and 206 of learning internetwork switch 200, prior to being forwarded to ports 
130 and 132 of router 126. In addition, messages sent through ports 128, 130 and 
132 of router 126 pass through learning internetwork switch 200 prior to being 
forwarded to VLANs 110, 102 and 118, respectively. 

10 At step 304, learning internetwork switch 200 receives the ARP query 

through the port of learning internetwork switch 200 that corresponds to DG and 
inspects the protocol-type information in the ARP query to determine that the packet is 
an ARP query. In response to detecting that the packet is an ARP query, learning 
internetwork switch 200 reads the L2 source address (SA) and the L3 source address 

15 (SNLA) from the ARP query (step 306). The S A and SNLA specified in the ARP 
query will be SDL2 and SDL3, respectively. At step 308, the learning internetwork 
switch 200 stores data indicating that SDL2 is the L2 address that corresponds to 
SDL3. Learning internetwork switch 200 also stores data indicating that the device 
that has the L2 address SDL2 is connected to the port of learning internetwork switch 

20 200 on which the ARP query arrived. 

Continuing again with the present example, at step 304, learning internetwork 
switch 200 receives the ARP query through port 202, which corresponds to port 128. 
Learning internetwork switch 200 reads the L2 source address {S A) and the L3 source 
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address (SNLA) from the ARP query at step 306. The S A and SNLA specified in the 
ARP query will be the L2 address of client 1 14 and the L3 address of client 1 14, 
respectively. At step 308, the learning internetwork switch 200 stores data indicating 
that the L2 address of client 1 14 is the L2 address that corresponds to the L3 address 
5 of client 1 14. Learning internetwork switch 200 also stores data indicating that client 
1 14 is connected to the port of learning internetwork switch 200 on which the ARP 
query arrived. 

At step 310, the learning internetwork switch 200 forwards the ARP query to 
the port of router 126 that corresponds to the port on which learning internetwork 

10 switch 200 received the ARP query. For example, if learning internetwork switch 
200 received the ARP query at port 202, then learning internetwork switch 200 
forwards the ARP query to port 128 of router 126. If learning internetwork switch 
200 received the ARP query at port 204, then learning internetwork switch 200 
forwards the ARP query to port 130 of router 126. If learning internetwork switch 

1 5 200 received the ARP query at port 206, then learning internetwork switch 200 

forwards the ARP query to port 132 of router 126. In the present example, the ARP 
query that is broadcast over VLAN 1 10 arrives at port 202, and is therefore forwarded 
by learning internetwork switch 200 to port 128 of router 126. 

At step 312, router 126 transmits a response to the ARP query through DG, 

20 which will be the same port of router 126 on which the ARP query was received. The 
data link layer destination address (DA) specified in the ARP response is SDL2. The 
data link layer source address (SA) specified in the ARP response is DGL2. The 
protocol-type (PT) specified in the ARP response indicates that the packet is an ARP 



08277LP118 



-16- 

iesponse. The network layer source address (SNLA) specified in the ARP response 
is DGL3. The network layer destination address (DNLA) specified in the ARP 
response is SDL3. 

Li the present example, router 126 transmits a response to the ARP query 

5 through port 128 at step 3 12. The data link layer destination address (DA) specified in 
the ARP response is the L2 address of client 1 14. The data link layer source address 
(SA) specified in the ARP response is the L2 address of port 128. The protocol-type 
(PT) specified in the ARP response indicates that the packet is an ARP response. The 
network layer source address (SNLA) specified in the ARP response is the L3 address 

10 of port 128. The network layer destination address (DNLA) specified in the ARP 
response is the L3 address of client 1 14. 

At step 314, learning internetwork switch 200 receives the ARP response from 
DG. At step 316, learning internetwork switch 200 reads the SNLA specified in the 
ARP response to determine if the ARP response is from DG. At step 3 18, learning 

15 internetwork switch 200 stores data indicating that DGL2 is the L2 address that 
corresponds to DGL3. At step 320, learning internetwork switch 200 forwards the 
ARP response to SOURCE-DEV. SOURCE-DEV receives the ARP response and 
reads the DGL2 from the ARP response. 

Returning to the present example, learning internetwork switch 200 receives 

20 the ARP response from port 128 at step 3 14. At step 3 1 6, learning internetwork 
switch 200 reads the SNLA specified in the ARP response to determine if the ARP 
response is from port 128. At step 318, learning internetwork switch 200 stores data 
indicating that the L2 address of port 128 is the L2 address that corresponds to the L3 
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address of port 128. At step 320, learning internetwork switch 200 forwards the ARP 
response to client 1 14. Client 1 14 receives the ARP response and reads the L2 
address of port 128 from the ARP response. 

5 TRANSMITTING A MESSAGE TO THE DEFAULT GATEWAY 

Having acquired DGL2 through the process described above, SOURCE-DEV 
has the information it requires to transmit the message to DEST-DEV through DG. 
Figures 4a, 4b and 4c are a flow chart illustrating the steps performed by the various 
devices within the network system 100 as SOURCE-DEV attempts to transmit the 

10 message to DEST-DEV. 

At step 400, SOURCE-DEV encapsulates the message in a packet and 
transmits the packet. The data link layer destination address (DA) specified in the 
packet is DGL2. The data link layer source address (SA) specified in the packet is 
SDL2. The protocol-type (PT) specified in the packet indicates that the packet is an 

15 Internet Protocol (IP) packet The network layer source address (SNLA) specified in 
the packet is SDL3. The network layer destination address (DNLA) specified in the 
packet is DDL3. Based on the DA contained in this control information, the L2 switch 
of SOURCE- VL AN transmits the packet to DG. 

Returning to the example in which client 1 14 is transmitting an inter- VLAN 

20 message to server 104, client 1 14 encapsulates the message in a packet and transmits 
the packet at step 400. The data link layer destination address (DA) specified in the 
packet is the L2 address of port 128. The data link layer source address (SA) 
specified in the packet is the L2 address of client 1 14. The protocol-type (PT) 
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specified in the packet indicates that the packet is an Internet Protocol (IP) packet The 
network layer source address (SNLA) specified in the packet is the L3 address of 
client 1 14. The network layer destination address (DNLA) specified in the packet is 
the L3 address of server 104. Based on the DA contained in this control information, 

5 the switch 136 transmits the packet to port 128. 

At step 402, learning internetwork switch 200 receives the packet at the port of 
learning internetwork switch 200 that corresponds to 1X5. After receiving the packet, 
learning internetwork switch 200 reads the control information to determine that the 
packet is destined for DG and that the protocol-type of the packet is IP. At step 404, 

10 learning internetwork switch 200 determines whether it has already stored the L2 
address associated with DDL3. In the present example, learning internetwork switch 
200 has not yet stored the L2 address associated with DDL3. Therefore, control 
passes to step 406. If switch had stored the L2 address associated with DDL3, 
learning internetwork switch 200 would forward the packet directly to the DEST-DEV 

15 (step 408), thereby circumventing the use of router 126. The process of forwarding 
inter- VLAN packets without involving router 126, referred to as proxy forwarding, 
shall be described in greater detail below. 

Returning to the present example, learning internetwork switch 200 receives 
the packet at port 202 at step 402. After receiving the packet, learning internetwork 

20 switch 200 reads the control information to determine that the packet is destined for 
port 128 and that the protocol-type of the packet is IP. At step 404, learning 
internetwork switch 200 determines whether it has already stored the L2 address 
associated with the L3 address of server 104. In the present example, learning 
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internetwork switch 200 has not yet stored the L2 address associated with the L3 
address of server 104. Therefore, control passes to step 406. If switch had stored the 
L2 address associated with the L3 address of server 104, learning internetwork switch 
200 would forward the packet directly to the server 104 (step 408), thereby 

5 circumventing the use of router 126. 

At step 406, learning internetwork switch 200 forwards the packet to DG on 
router 126 using L2 switching. At step 410, DG receives the packet and determines 
the outbound port to which DEST-DEV is attached (OP) through an L3 lookup. 
Router 126 has previously acquired the location of DEST-DEV using a routing 

10 protocol, such as Routing Information Protocol (RIP) or Open Shortest Path First 
(OSPF). 

Returning to the present example, learning internetwork switch 200 forwards 
the packet to port 128 on router 126 using L2 switching at step 406. At step 410, port 
128 receives the packet and determines, by performing an L3 lookup, that server 104 

15 is attached to port 130. Router 126 has previously acquired the location of server 104 
using a routing protocol. 

At step 412, router 126 sends an ARP query through OP to determine DDL2. 
The data link layer source address (S A) specified in the ARP query is the L2 address 
of OP (OPL2). The protocol-type (PT) indicates that the query is an ARP query. The 

20 network layer source address (SNLA) specified in the ARP query is the L3 address of 
OP (OPL3). The network layer destination address (DNLA) specified in the ARP 
query is DDL3. 
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Jn the present example, router 126 sends an ARP query through port 130 to 
determine the L2 address of server 104 (step 412). The data link layer source address 
(SA) specified in the ARP query is the L2 address of port 130. The protocol-type 
(PT) indicates that the query is an ARP query. The network layer source address 
5 (SNLA) specified in the ARP query is the L3 address of port 130. The network layer 
destination address (DNLA) specified in die ARP query is the L3 address of server 
104. 

At step 414, learning internetwork switch 200 receives the ARP query and 
learns from the control information contained in the ARP query that the L2 address 

10 associated with OPL3 is OPL2. At step 416, learning internetwork switch 200 
forwards the ARP query to DEST-VLAN through the port of learning internetwork 
switch 200 that corresponds to the outbound port on which router 126 sent the ARP 
query. At step 418, the L2 switch in DEST-VLAN broadcasts the ARP query to all of 
the members of DEST-VLAN. 

15 In the present example, learning internetwork switch 200 receives the ARP 

query and learns from the control information contained in the ARP query that the L2 
address associated with the L3 address of port 130 is the L2 address of port 130 (step 
414). At step 416, learning internetwork switch 200 forwards the ARP query to 
VLAN 102 through port 204. At step 418, switch 134 broadcasts the ARP query to 

20 all of the members of VLAN 102. 

At step 420, DEST-DEV receives the ARP query and transmits an ARP 
response to the ARP query. The ARP response specifies that DDL2 is the L2 address 
associated with DDL3. At step 422, the learning internetwork switch 200 receives the 
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ARP response from DEST-DEV and stores data indicating that DDL2 is !hejL2 
address associated with DDL3. Learning internetwork switch 200 also stores data that 
indicates that the device with the address DDL2 is connected to the port of learning 
internetwork switch 200 on which the ARP response was received. 

5 In the present example, server 104 receives the ARP query and transmits an 

ARP response to the ARP query (step 420). The ARP response specifies that the L2 
address of server 104 is the L2 address associated with the L3 address of server 104. 
At step 422, the learning internetwork switch 200 receives the ARP response from 
server 104 and stores data indicating that the L2 address of server 104 is the L2 

10 address associated with the L3 address of server 104. Learning internetwork switch 
200 also stores data that indicates that the device with the L2 address of server 104 is 
connected to port 204. 

At step 424, learning internetwork switch 200 forwards the ARP response to 
router 126. At step 426, router 126 transmits the packet through learning 

1 5 internetwork switch 200 to DEST-VLAN. The data link layer destination address 
(DA) specified in the packet is DDL2. The data link layer source address (S A) 
specified in the packet is the L2 address of the port of router 126 that connects router 
126 to DEST-VLAN. The protocol-type (PT) specified in the packet indicates that the 
packet is an Internet Protocol (IP) packet. The network layer source address (SNLA) 

20 specified in the packet is SDL3. The network layer destination address (DNLA) 
specified in the packet is DDL3. Based on this control information, the L2 switch in 
DEST-VLAN sends the message to DEST-DEV. At step 428, DEST-DEV receives 
the packet containing the message from SOURCE-DEV. 
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In the present example, the data link layer destination address (DA) specified 
in the packet is the L2 address of server 104. The data link layer source address (SA) 
specified in the packet is the L2 address of port 130. The protocol-type (PT) specified 
in the packet indicates that the packet is an Internet Protocol (IP) packet The network 
5 layer source address (SNLA) specified in the packet is the L3 address of client 1 14. 
The network layer destination address (DNLA) specified in the packet is the L3 
address of server 104. Based on this control information, the switch 134 sends the 
message to server 104. At step 428, server 104 receives the packet containing the 
message that was originally sent from client 1 14. 

10 

PROXY FORWARDING 
During the process described above, SOURCE-DEV, DEST-DEV and router 
126 behaved exactly as they would if learning internetwork switch 200 did not exist. 
Thus, the presence of learning internetwork switch 200 is completely transparent to all 

15 of the devices involved in inter-VLAN communications. During the inter-VLAN 
cornmunication, learning internetwork switch 200 learned (1) that the L2 address 
corresponding to SDL3 is SDL2, (2) which port of learning internetwork switch 200 
is connected to SOURCE-DEV, (3) that the L2 address corresponding to DDL3 is 
DDL2, (4) which port of learning internetwork switch 200 is connected to DEST- 

20 DEV, (5) that the L2 address of DG is DGL2, and (6) that the L2 address of OP is 
OPL2. In the specific example in which client 1 14 sent a message to server 104, 
learning internetwork switch 200 learned (1) that the L2 address corresponding to the 
L3 address of client 1 14 is the L2 address of client 1 14, (2) that port 202 is connected 



082771.P118 



-23- 

to client 114, (3) that the L2 address corresponding to the L3 address of server 104 is 
the L2 address of server 104, (4) that port 204 is connected to server 104, (5) the L2 
address of port 128, and (6) the L2 address of port 130. 

Having acquired the information described above, learning internetwork 

5 switch 200 has all of the information necessary to forward all future packets sent 
between SOURCE-DEV and DEST-DEV without involving router 126 in the 
forwarding process. Figure 5 is a flow chart illustrating the steps performed by 
learning internetwork switch 200 in the proxy forwarding process. 

Referring to Figure 5, at step 500 learning internetwork switch 200 receives a 

10 packet from SOURCE-DEV. At step 502, learning internetwork switch 200 reads the 
DA, the DNLA and the PT of the packet If the DA is a port of router 126, the FT is 
IP and the DNLA is an L3 address for which learning internetwork switch 200 has 
learned the corresponding L2 address, then control passes to step 504. Otherwise, 
control passes to step 506, where the packet is forwarded to router 126 using L2 

15 forwarding. 

At step 504, learning internetwork switch 200 does a lookup based on the 
DNLA specified in the packet to determine (1) the L2 address associated with the 
DNLA and (2) the port of learning internetwork switch 200 to which the device 
associated with the DNLA is attached. At step 508, learning internetwork switch 200 
20 sets the DA of the packet to the L2 address determined in step 504. Learning 

internetwork switch 200 also sets the S A of the packet to the L2 address of the port of 
router 126 that would normally route the packet. At step 510, learning internetwork 
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switch 200 uses L2 routing to forward the packet through the port determined in step 
504 to the appropriate destination device. 

Assuming that the packet is a subsequent message from client 1 14 to server 
104, learning interaetwo± switch 200 would do a lookup based on the L3 address of 
5 server 104 to determine (1) the L2 address of server 104 and (2) that server 104 is 
attached to port 204. At step 508, learning internetwork switch 200 would set the DA 
of the packet to the L2 address of client 1 14, and set the SA of the packet to the L2 
address of port 130. At step 510, learning internetwork switch 200 would use L2 
routing to forward the packet through port 204 to server 104. 

10 

OPERATION OF LEARNING INTERNETWORK SWITCH 200 
The operation of learning internetwork switch 200 has been described above in 
the context of an single inter- VLAN communication. However, at any given time 
numerous packets from numerous different devices may be passing through learning 
15 internetwork switch 200. The manner in which learning internetwork switch 200 
processes the packets shall be described in detail below with reference to Figures 6a 
and 6b. 

Referring to Figures 6a and 6b, learning internetwork switch 200 detects the 
arrival of a packet (step 600). At step 602, learning internetwork switch 200 
20 determines the protocol-type (PT) of the packet If the FT is ARP, control passes to 
step 604. If the PT is IP, then control passes to step 606. If the PT is any other type 
of protocol, control passes to step 612. 
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At step 604, learning internetwork switch 200 determines whether the 13 
destination address (DNLA) of the packet is the L3 address of a port of router 126. If 
the DNLA is the L3 address of a port of router 126, then control passes to step 608. 
Otherwise, control passes to step 610. 

5 At step 608, learning internetwork switch 200 stores data indicating that (1) 

the 12 source address (SA) in the packet is the L2 address associated with the SNLA 
in the packet and (2) the device with the L2 address specified by the S A is connected 
to the port of learning internetwork switch 200 on which the packet was received. 
Control then proceeds to step 612. 

10 At step 610, learning internetwork switch 200 determines whether the SNLA 

of the packet is the L3 address of a port of router 126. If the SNLA of the packet is 
the L3 address of a port of router 126, then control passes to step 614. At step 614, 
learning internetwork switch 200 stores data indicating that the S A in the packet is the 
L2 address associated with the SNLA in the packet. If the SNLA of the packet is not 

15 the L3 address of a port of router 126, then control passes from step 610 to step 612. 

At step 612, learning internetwork switch 200 forwards the packet without 
change to the port that corresponds to the port on which the packet arrived. For 
example, if the packet arrived at port 202, learning internetwork switch 200 would 
forward the packet through the port connected to port 128. Similarly, if the packet 

20 arrived from port 128, learning internetwork switch 200 would forward the packet 
through the port 202. 
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At step 606, learning internetwork switch 200 determines whether proxy 
forwarding is enabled. If proxy forwarding is enabled, control passes to step 616. If 
proxy forwarding is not enabled, control passes to step 612. 

At step 616, learning internetwork switch 200 determines whether the DA in 
5 the packet is the L2 address of a port of router 126. If the DA in the packet is the L2 
address of a port of router 126, then control passes to step 618* Otherwise, control 
passes to step 612. 

At step 618, learning internetwork switch 200 determines whether the L2 
address that corresponds to the DNLA of the packet is known. Learning internetwork 
10 switch 200 will have stored data indicating a correspondence between an L2 address 
and the DNLA if in inter- VLAN communication between the source and destination 
devices in question has already occurred. If the L2 address that corresponds to the 
DNLA of the packet is known, then control passes to step 620. Otherwise, control 
passes to step 612. 

15 At step 620, learning internetwork switch 200 sets the DA in the packet to the 

L2 address that corresponds to the DNLA specified in the packet Learning 
internetwork switch 200 also sets the S A in the packet to the L2 address of the router 
port that would normally have sent the packet. The learning internetwork switch 200 
then transmits the packet directly to the destination device using L2 forwarding by 

20 sending the packet through the port to which the destination device is attached. If 
learning internetwork switch 200 knows the L2 address associated with the DNLA, 
then learning internetwork switch 200 will also know the port to which the device 
corresponding to the DNLA is connected (see step 608). 
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Significantly, all of the operations performed by learning internetwork switch 
200 are completely transparent to all other devices in the network system 100. Thus, 
the use of learning internetwork switch 200 to perform proxy forwarding would not 
require any change in the addressing scheme used by network system 100. Further, 

5 learning internetwork switch 200 learns the addresses and locations of devices by 
inspecting certain packets that flow through learning internetwork switch 200. As a 
result, learning internetwork switch 200 does not have to participate in routing 
protocols which may vary from network to network. In addition, operation at L2 of 
the VLANs that are locally attached to learning internetwork switch 200 remains 

10 unchanged. 

In the foregoing specification, the invention has been described with reference 
to specific embodiments thereof. It will, however, be evident that various 
modifications and changes may be made thereto without departing from the broader 
spirit and scope of the invention. The specification and drawings are, accordingly, to 
15 be regarded in an illustrative rather than a restrictive sense. 
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CLAIMS 

What is claimed is: 



11. A learning internetwork switch for use in a network that includes a plurality of 

2 virtual local area networks, the learning internetwork switch comprising: 

3 a first set of ports connecting the learning internetwork switch to a set of 

4 virtual local area networks, wherein each virtual local area network of 

5 the set of virtual local area networks is a virtual local area network of 

6 the plurality of virtual local area networks that is locally attached to the 

7 learning internetwork switch; 

8 a second set of ports connecting the learning internetwork switch to a router, 

9 wherein devices that belong to the virtual local area networks in the set 

10 of virtual local area networks communicate with the router by 

1 1 transmitting packets through the learning internetwork switch; and 

12 a learning mechanism that inspects control packets sent between the router and 

13 the devices, the learning mechanism storing association data that 

14 indicates a correspondence between data link layer addresses, network 

15 layer addresses, and the first set of ports based on information 

1 6 contained in the control packets; 

17 said learning internetwork switch using said association data to forward traffic 

1 8 between locally attached virtual local area networks. 

1 2 . The learning internetwork switch of Claim 1 wherein: 
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2 a third set of ports on the router connect the router to the second set of ports; 

3 and 

4 the learning mechanism is further configured to store data indicating a 

5 correspondence between data link layer addresses of the third set of 

6 ports and network layer addresses of the third set of ports based on 

7 information contained in the control packets* 

1 3 . The learning internetwork switch of Claim 1 further including a proxy 

2 forwarding mechanism configured to: 

3 detect when a packet sent by a first device of a first virtual local area network 

4 in the set of virtual local area networks contains a data link layer 

5 destination address associated with the router and a network layer 

6 destination address associated with a second device of a second virtual 

7 local area network in the set of virtual local area networks; 

8 determine the data link layer address of the second device based on the 

9 network layer address of the second device; 

10 replace in the packet the data link layer destination address associated with the 

1 1 router with the data link layer address associated with the second 

12 device; and 

13 transmit the packet through the port of the first set of ports to which the second 

14 device is connected. 

1 4 . The learning internetwork switch of Claim 1 wherein: 
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2 the control packets include packets which are request packets that request a 

3 data link layer address of a port of the router; and 

4 the request packets contain a data link layer source address associated with the 

5 device sending the packet, a network layer source address associated 

6 with the device sending the packet, and a network layer destination 

7 address associated with the port of the router. 



The learning internetwork switch of Claim 3 wherein: 
the packet includes a data link layer source address associated with the first 
device; and 

the proxy forwarding mechanism is further configured to: 

determine a data link layer address associated with a port of the router 
which serves as a default gateway to the second virtual local 
area network; and 
replace in the packet the data link layer source address associated with 
the first device with the data link layer address associated with 
the port of the router which serves as the default gateway to the 
second virtual local area network. 



1 6 . A method, for use by a learning internetwork switch connected to a router, for 

2 determining locations of devices that belong to a set of virtual local area 

3 networks locally attached to the learning internetwork switch, the method 

4 comprising the steps of: 



1 5. 
2 
3 
4 
5 
6 
7 
8 
9 
10 
11 
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5 receiving at a first port a packet from a device that belongs to one of the virtual 

m 

6 local area networks, wherein the packet includes a network layer 

7 destination address that corresponds to a particular port of the router; 

8 determining whether the packet is a request for the data link layer address of 

9 the particular port of the router, 

10 if the packet is a request for the data link layer address of the particular port of 

11 the router, then 

12 reading a data link layer source address and a network layer source 

1 3 address from the packet; 

14 storing data indicating that the data link layer source address 

1 5 corresponds to the network layer source address; 

1 6 storing data indicating that the device that originally transmitted the 

1 7 packet is connected to the first port; and 

1 8 forwarding the packet to the particular port of the router 

1 7 . The method of Claim 6 further comprising the steps of: 

2 if the packet contains a message to be sent through the iouter to a second 

3 device that belongs to a second virtual local area network of the set of 

4 virtual local area networks, then performing the steps of: 

5 reading from the packet a network layer destination address associated 

6 with the second device; 
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7 performing a lookup operation to determine if configuration 

8 information has been stored for the network layer destination 

9 address; 

10 if configuration information has been stored for the network layer 

1 1 destination address, then reading the configuration information 

12 to determine a data link layer address of the second device and 

13 that the second device is connected to a second port of the 

14 learning internetwork switch; and 

15 forwarding the packet to the second device through the second port. 

1 8 . The method of Claim 7 wherein the step of forwarding the packet includes the 

2 steps of: 

3 replacing, in the packet, a data link layer destination address associated with 

4 the router with the data link layer address associated with the second 

5 device; and 

6 replacing, in the packet, a data link layer source address associated with the 

7 device with a data link layer address associated with a port of the router 

8 that is connected to the second virtual local area network. 

1 9 • The method of Claim 7 further including the step of forwarding the packet to 

2 the router if configuration information has not yet been stored for the network 

3 layer destination address. 
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1 10. The method of Claim 7 further comprising the step of determining whether 

2 proxy forwarding is active, and performing the step of forwarding the packet 

3 to the second device through the second port only if proxy forwarding is 

4 active. 

1 11. The method of Claim 6 further comprising the steps of: 

2 receiving from the router a response packet to the packet, the response 

3 packet including a data link layer address associated with the 

4 particular port of the router; 

5 inspecting the response packet to determine the data link layer address 

6 associated with the particular port of the router; 

7 storing data that indicates that the data link layer address of the 

8 particular port corresponds to the network layer address of the 

9 particular port; and 

10 forwarding the response packet to the device through the first port. 

1 12. The method of Claim 1 1 further comprising the step of storing data that 

2 indicates that the virtual local area network is connected to the particular port 

3 based on information contained in the response packet. 

1 13. A method, for use by a learning internetwork switch, for performing proxy 

2 forwarding between a first device on a first virtual local area network and a 

3 second device on a second virtual local area network, where the first virtual 
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4 local area network and the second virtual local area network are locally 

5 attached to the learning internetwork switch, the method comprising the steps 

6 of: 

7 receiving a packet from the first device that specifies a network layer 

8 destination address and a data link layer destination address, wherein 

9 the specified network layer destination address is a network layer 

10 address associated with the second device and the data link layer 

1 1 destination address is a data link layer address associated with a first 

1 2 port of a router connected to the learning internetwork switch; 

13 performing a lookup operation to determine a data link layer address associated 

14 with the second device; 

15 if the data link layer address associated with the second device is found during 

16 the lookup operation, then 

17 changing the data link layer destination address specified in the packet 

18 to the data link layer address associated with the second device; 

19 and 

20 forwarding the packet to the second device over the second virtual local 

21 area network, 

1 14, The method of Claim 1 3 wherein: 

2 the packet specifies a data link layer source address, wherein the data link layer 

3 source address specified in the packet is a data link layer address 

4 associated with the first device; 
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5 a second port of the router is connected to the second virtual local area 

6 network; and 

7 the method further comprises the step of changing the data link layer source 

8 address in the packet to a data link layer address associated with the 

9 second port prior to forwarding the packet to the second device. 

1 15. The method of Claim 1 3 further comprising the step of learning a location of 

2 the second device prior to receiving from information contained in a previous 

3 packet transmitted by the second device. 

1 16. The method of Claim 15 wherein the step of learning includes the steps of: 

2 receiving at a particular port of the learning internetwork switch the previous 

3 packet; 

4 determining that the previous packet is addressed to a particular port of the 

5 router; 

6 reading a data link layer source address and a network layer source address 

7 from the previous packet; 

8 storing data that indicates that the data link layer source address is the data link 

9 layer address associated with the network layer source address; 

10 storing data that indicates that the device associated with the network layer 

1 1 source address is connected to the particular port of the learning 

12 internetwork switch; 
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storing data that indicates that the device associated with the network layer 
source address is connected to the particular port of the router. 
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ABSTRACT OF THE DISCLOSURE 

A method and apparatus for layer 3 switching packets between locally attached virtual 
local area networks without using a routing protocol are provided A learning 
internetwork switch is connected between a router and a plurality of virtual local area 

5 networks. Communications between devices on the virtual local area networks and 
the router pass through the learning internetwork switch. By inspecting certain 
packets that flow between the devices and the router, the learning internetwork switch 
learns the location of the devices without having to use a routing protocol. The 
learning internetwork switch learns the network layer and the data link layer addresses 

10 of the various devices. Once the learning internetwork switch has learned the 
location, the network layer address and data link layer address of a device, the 
learning internetwork switch can forward packets between devices on different virtual 
local area networks using layer 3 switching without involving the router. 
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300 

SOURCE-DEV DETERMINES THAT DEST-DEV IS NOT A MEMBER OF 
SOURCE-VLAN BASED ON DDL3 
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SOURCE-DEV TRANSMITS AN ARP QUERY THAT REQUESTS THE L2 
ADDRESS ASSOCIATED WITH DGL3 
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304 

SWITCH 200 RECEIVES THE ARP QUERY THROUGH THE PORT OF 
SWITCH 200 THAT CORESPONDS TO DG AND INSPECTS THE 
PROTOCOL-TYPE INFORMATION IN THE ARP QUERY TO DETERMINE 
THAT THE PACKET IS AN ARP QUERY 



I 



306 

SWITCH 200 READS THE L2 SOURCE ADDRESS (SA) AND THE L3 
SOURCE ADDRESS (SNLA) FROM THE ARP QUERY 
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THE SWITCH 200 STORES DATA INDICATING THAT (1) SDL2 IS THE L2 
ADDRESS THAT CORRESPONDS TO SDL3 AND (2) THE DEVICE THAT 
HAS THE L2 ADDRESS SDL2 IS CONNECTED TO THE PORT OF SWITCH 
200 ON WHICH THE ARP QUERY ARRIVED 
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THE SWITCH 200 FORWARDS THE ARP QUERY TO THE PORT OF 
ROUTER 126 THAT CORRESPONDS TO THE PORT ON WHICH SWITCH 200 

RECEIVED THE ARP QUERY 
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ROUTER 126 TRANSMITS A RESPONSE TO THE ARP QUERY THROUGH 
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SWITCH 200 RECEIVES THE ARP RESPONSE FROM DG 
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SWITCH 200 READS THE SIMLA SPECIFIED IN THE ARP RESPONSE TO 
DETERMINE IF THE ARP RESPONSE IS FROM DG 
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SWITCH 200 STORES DATA INDICATING THAT DGL2 IS THE L2 ADDRESS 

THAT CORRESPONDS TO DGL3 

+ 

320 

SWITCH 200 FORWARDS THE ARP RESPONSE TO SOURCE-DEV 
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SOURCE-DEV ENCAPSULATES THE MESSAGE IN A PACKET AND 
TRANSMITS THE PACKET 
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SWITCH 200 RECEIVES THE PACKET AT THE PORT OF SWITCH 200 
THAT CORRESPONDS TO DG 
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HAS SWITCH 200 ALREADY STORED THE L2 
ADDRESS ASSOCIATED WITH DDL3? 
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SWITCH 200 FORWARDS THE 
PACKET TO DG ON ROUTER 126 
USING L2 SWITCHING 
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SWITCH 200 FORWARDS THE 
PACKET DIRECTLY TO THE 
DEST-DEV (STEP 408 
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DG RECEIVES THE PACKET AND DETERMINES THE OUTBOUND PORT 
TO WHICH DEST-DEV IS ATTACHED (OP) THROUGH AN L3 LOOKUP 
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ROUTER 126 SENDS AN ARP QUERY THROUGH OP TO DETERMINE DDL2 
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SWITCH 200 RECEIVES THE ARP QUERY AND LEARNS FROM THE 
CONTROL INFORMATION CONTAINED IN THE ARP QUERY THAT THE L2 
ADDRESS ASSOCIATED WITH OPL3 IS OPL2 
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SWITCH 200 FORWARDS THE ARP QUERY TO DEST-VLAN THROUGH 
THE PORT OF SWITCH 200 THAT CORRESPONDS TO THE OUTBOUND 
PORT ON WHICH ROUTER 126 SENT THE ARP QUERY 
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THE L2 SWITCH IN DEST-VLAN BROADCASTS THE ARP QUERY TO ALL 
OF THE MEMBERS OF DEST-VLAN 
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DEST-VLAN RECEIVES THE ARP QUERY AND TRANSMITS AN ARP 
RESPONSE TO THE ARP QUERY 
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SWITCH 200 STORES DATA INDICATING THAT DDL2 IS THE L2 ADDRESS 

ASSOCIATED WITH DDL3 
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424 

SWITCH 200 FORWARDS THE ARP RESPONSE TO ROUTER 126 
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426 

ROUTER 126 TRANSMITS THE PACKET THROUGH SWITCH 200 TO 

DEST-VLAN 
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DEST-DEV RECEIVES THE PACKET CONTAINING THE MESSAGE FROM 

SOURCE-DEV 
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RECEIVE A PACKET FROM SOURCE-DEV 
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DOES DA=A PORT OF ROUTER 126, PT=IP AND 
DNLA=AN L3 ADDRESS FOR WHICH SWITCH 200 HAS 
LEARNED THE CORRESPONDING L2 ADDRESS? 
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504 

PERFORM A LOOKUP BASED ON THE 
DNLA SPECIFIED IN THE PACKET TO 

DETERMINE (1) THE L2 ADDRESS 
ASSOCIATED WITH THE DNLA AND (2) 
THE PORT OF SWITCH 200 TO WHICH 
THE DEVICE ASSOCIATED WITH THE 
DNLA IS ATTACHED 
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FOWARD THE PACKET 
TO ROUTER 126 USING 
L2 ROUTING 



X 



508 

SET THE DA OF THE PACKET TO THE L2 ADDRESS DETERMINED IN STEP 504 
AND SET THE SA OF THE PACKET TO THE L2 ADDRESS OF THE PORT OF 
ROUTER 126 THAT WOULD NORMALLY ROUTE THE PACKET 
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FORWARD THE PACKET THROUGH THE PORT DETERMINED IN STEP 504 TO 
THE APPROPRIATE DESTINATION DEVICE 
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DETECT ARRIVAL OF A PACKET 
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DETERMINE THE PROTOCOL-TYPE (PT) OF 
THE PACKET 
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STORE DATA INDICATING THAT (1) 
THE L2 SOURCE ADDRESS (SA) IN 
THE PACKET IS THE L2 ADDRESS 
ASSOCIATED WITH THE SNLA IN 
THE PACKET AND (2) THE DEVICE 
WITH THE L2 ADDRESS SPECIFIED 
BY THE SA IS CONNECTED TO THE 
PORT OF SWITCH 200 ON WHICH 
THE PACKET WAS RECEIVED 
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THE SA IN THE PACKET IS THE 
L2 ADDRESS ASSOCIATED WITH 
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CORRESPONDS TO THE PORT ON WHICH THE 
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SET DA IN PACKET TO THE L2 ADDRESS 
THAT CORRESPONDS TO THE DNLA, SET 
SA IN PACKET TO THE L2 ADDRESS OF THE 
APPROPRIATE PORT OF ROUTER 126, AND 

TRANSMIT THE PACKET THROUGH THE 
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